Date: Thu, 03 Mar 2016 09:25:30 +0800 From: Paul Wise <pabs3@...edaddy.net> To: cve@...re.org, oss-security@...ts.openwall.com Subject: Mitre, reserved CVEs and oss-security? Hi all, I think it would be a good idea for Mitre to remove the RESERVED mark from CVEs that have been released for use by people mailing issues to the oss-security to get CVE numbers. The CVE database could then point at the oss-security mailing list archives as a reference for the issue. Any thoughts? For example CVE-2016-2515 could refer to one of these posts: http://www.openwall.com/lists/oss-security/2016/02/20/1 http://www.openwall.com/lists/oss-security/2016/02/20/2 -- bye, pabs http://bonedaddy.net/pabs3/ Download attachment "signature.asc" of type "application/pgp-signature" (802 bytes)
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.